Security Architect

Job Description

We are looking for a Security Architect to play a key role in driving the security of our AI-first solutions. In this role, you will: * Actively participate in business and enterprise architecture forums, advocating for cloud security and providing expertise on security matters. * Develop and maintain security strategy plans and roadmaps with measurable benchmarks to track progress. * Create and maintain Security Architecture processes and artifacts, ensuring security capabilities align with business, technology, and threat landscapes. * Serve as a subject matter expert in secure cloud technology design, development, and implementation. * Establish architecture design principles and practices to improve performance, effectiveness, security, compliance, and scalability of solutions. * Partner with cross-functional teams to assess cloud security risks, focusing on threat detection, security control enforcement, and incident response. * Understand Amazon Web Services (AWS) and other leading cloud service providers' offerings. * Plan and design cloud-native architecture based on business requirements, adhering to cloud security frameworks, standards, and best practices. * Determine baseline security configuration standards for operating systems, network segmentation, web application firewalls, and mobile devices. * Review security technologies, tools, and services, providing recommendations to the security team based on policy and procedures.

Qualifications

To be successful in this role, you should have: 1. Minimum of 10 years of experience with hands-on security architecture and/or engineering. 2. Minimum of 5 years of experience with Amazon Web Services (AWS) and Microsoft (MS) Azure. 3. Bachelor’s degree in Computer Science, Information Systems, or equivalent practical experience. 4. CISSP, CISA, CISM, CCSP, or other relevant security-related designation(s). 5. AWS Security Certification, AWS Solutions Architect Certifications. 6. Azure Security Engineer, Azure Cybersecurity Architect Certifications. 7. Experience with SaaS, IaaS, and PaaS architectural solutions within Amazon Web Services, Microsoft Azure, and other cloud providers. 8. Experience in Cloud, DevSecOps, Container Security, IAM patterns, WAF/CDN/DDoS services, security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies. 9. Experience in security architecture methodologies like NIST security framework and HITRUST standards, best practices like Mitre Att@ck framework, CIS benchmarks, and defense-in-depth. 10. Experience with data protection, cryptography, key management, identity, and access management (IAM), network security within SaaS, IaaS, PaaS, and other cloud environments. 11. Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies. 12. Broad knowledge of traditional security controls and technologies, such as Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), public key infrastructure (PKI), antivirus and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, security automation and orchestration, deception technologies, and application controls. 13. Experience architecting SIEM systems, threat intelligence platforms, security automation and orchestration solutions, IDS/IPS, file integrity monitoring (FIM), data loss prevention (DLP), and other network and system monitoring tools